Stack Overflow
Stack Overflow

Questions tagged [two-factor-authentication]

Is an approach to authentication which requires the presentation of two or more authentication factors.

Two-factor authentication (TFA, T-FA or 2FA) is an approach to authentication which requires the presentation of two or more of the three authentication factors: a knowledge factor ("something the user knows"), a possession factor ("something the user has"), and an inherence factor ("something the user is").

See also and the Security.StackExchange multi-factor tag.

417 questions
-1
votes
1 answer

How to implement Two factor Authentication along with JWT in Spring Boot?

I have recently developed a web application using jwt, now i want to implement 2 factor Authentication like sending OTP to email id. Can anyone suggest me how can i achieve it?
MohanG
  • 81
  • 10
-1
votes
2 answers

CentOS 7 configured for 2FA SSH access via pam_oath - allows any string 6 characters or less for one-time password

So I've been reading up on configuring a CentOS 7 machine for 2 factor authentication for SSH, using pam_oath and the FreeOTP phone app, plus local usernames/password for the two factors. I've read various online articles, and all seem to follow…
p_k_n_y
  • 19
  • 6
-1
votes
1 answer

Is any kind of Device ID sent to website/service that uses 2FA?

I am in the middle of securing all my accounts with new passwords + 2FA where it's possible, and a question came up in my head: If I set up 2FA authentication on a website (with an app like Google Authenticator) then will this website receive any…
crlornt
  • 1
-1
votes
1 answer

How secret key shared using barcode is secure in 2FA?

I am implementing Time based OTP (TOTP) for my network security course. The last time I gave presentation my instructor asked me "If you're going to share secret key by generating QR code and then letting the client(soft token) scan it, how are you…
Prakhar
  • 64
  • 9
-1
votes
1 answer

How should I generate a "secret" code for my two factor authentication system?

I am only doing this as a method to secure a third party product that does not have a native way of requesting and setting up 2FA. Essentially this creates a request that is sent to IT to have them manually add the secret key to a users profile when…
Landmine
  • 1,630
  • 6
  • 35
  • 56
-1
votes
1 answer

Django CSRF vs 2FA

I am using a contractor for web development and as part of admin panel security, he wants to implement CSRF. I have never used CSRF but multiple websites use 2FA. He said CSRF will take care of security and I don't need 2FA. I can't find articles…
Zanam
  • 3,540
  • 9
  • 42
  • 91
-1
votes
1 answer

Credit card tokenization: how to avoid two-factor authentication?

(Not sure if this is the right place to ask. Please point out other forums if that's not the case). I'm based in Europe, and I've set up an invoicing system for a client of ours which uses a tokenization system provided by his bank, as part of the…
PaulJ
  • 1,410
  • 4
  • 25
  • 43
-1
votes
1 answer

Edit password_query in Dovecot for 2 factor auth

I want to add two-factor authentication to dovecot and thought of appending a OTP to the normal password a user has then sending that "new" password to Dovecot so i wondered whether it is possible to edit the password_query in dovecot-sql.conf.ext…
Michal M.
  • 1
-1
votes
1 answer

How to direct pf_auth.pf_authenticate request to on-premise Multi Factor Authentication Server

I've been beating my head for hours on this request. I have an on-premise installation of an Azure MultiFactor Authentication Server. I'm building a new ASP.Net MVC 5 application that will do an LDAP lookup for users in Active Directory (also…
Phil Hagerman
  • 19
  • 4
-1
votes
1 answer

adding two factor authentication on to cots?

I know, in general, what two factor authentication (2FA) is and how it works. I also know it's coded into the application that needs access. What I'm wondering is: has anyone ever come across or devised a method of using 2FA for a COTS…
Robert
  • 1
  • 2
-2
votes
1 answer

Two factor authentication in two steps

I am trying to implement two factor authentication. The login will consist of 2 steps: Username and password are provided and checked for correctness. If they are correct, and 2FA is not enabled for the account, the user is logged in (a cookie is…
Gasp0de
  • 719
  • 1
  • 7
  • 21
-2
votes
2 answers

Doubts about Two Factor Authentication (2FA)

I have been reluctant to move to 2FA for some reasons… Here is a use case. The user has two Google accounts (personal and business) Both accounts are configured on the Android smartphone Two-Factor-Authentication is enabled on both accounts Now,…
Lord of Scripts
  • 3,420
  • 5
  • 35
  • 59
1 2 3
27
28